1. Introduction & scope

We (Roque Consulting Pty Ltd) are committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and store personal information, and your rights under the Privacy Act 1988 (Cth), including the Australian Privacy Principles (APPs). OAIC+2Sprintlaw+2

If you are a consumer in another jurisdiction (e.g. you access our services overseas), additional privacy laws (e.g. GDPR) may apply.

By using our website, contacting us, or engaging our services, you agree to the practices described below.

2. What personal information we collect

We may collect (directly or via third parties) the following categories of personal information:

• Identity & contact: name, job title, organisation, email address, phone number, postal address

• Organisational / business data: company size, sector, internal data, purchasing preferences

• Usage / technical: IP address, browser type, operating system, device identifiers, cookies, site analytics

• Transactional / financial: billing address, payment method, invoice history, tax identifiers

• Training / engagement data: attendance records, feedback, assessments, responses, performance data

• Other optional data you voluntarily provide (e.g. uploaded documents, preference settings)

We will only collect sensitive information (e.g. health data, racial or ethnic origin) if you expressly consent and where permitted under applicable law.

3. How we collect personal information

We collect information:

• Directly from you (via web forms, onboarding, email, phone, surveys)

• Automatically when you visit our website (via cookies, analytics, server logs)

• From third parties (e.g. referral sources, publicly available sources, partners)

• During training or consulting engagements (e.g. data you supply, feedback forms)

4. Purposes of collection and use

Provide, monitor, and improve our services (data analysis, training, consulting)

• Manage client relationships, communication, support

• Billing, invoicing, payment processing, and financial recordkeeping

• Tailor content, offers, marketing, and proposals

• Conduct analytics, reporting, internal research, benchmarking

• Comply with legal, regulatory, and tax obligations

• Enforce our rights, prevent fraud, secure our systems

• With your consent, for marketing and promotional communications

5. Disclosure of personal information / Third parties

We may disclose your personal information to:

• Our personnel, contractors, agents (for providing services)

• Third-party service providers (e.g. payment processors, hosting, cloud providers, analytics, email platforms)

• Professional advisors (accountants, auditors, legal)

• Related entities or affiliates

• Legal, governmental or regulatory bodies if required by law, court order or government request

• Parties in connection with a business restructure, sale or merger (with confidentiality obligations)

If we disclose personal information overseas (e.g. cloud servers, global service providers), we will take reasonable steps to ensure that comparable privacy protections apply. OAIC+2Sprintlaw+2

6. Cookies, analytics & tracking

We use cookies, web beacons and similar technologies on our website to:

• Understand web traffic and usage (e.g. Google Analytics)

• Improve website functionality, user experience

• Enable necessary site features (login, preferences)

• Support marketing and tracking

You may set your browser to refuse cookies or alert you when cookies are being used; however, disabling cookies may affect your ability to use certain features of our website.

7. Data quality, retention & security

We take reasonable steps to ensure your personal information is accurate, complete, and up-to-date.

• We retain personal information only as long as needed for the purposes described (or as required by law).

• When no longer needed, we will securely destroy or de-identify the data.

• We implement administrative, technical, and physical safeguards to protect information from misuse, interference, loss, unauthorised access, modification or disclosure.

• However, no data transmission or storage is 100% secure; we cannot guarantee absolute security.

8. Access, correction & deletion

You have the right to:

• Request access to the personal information we hold about you

• Request correction of inaccuracies

• Request deletion or de-identification (subject to legal or business retention obligations)

• Withdraw your consent (to the extent we rely on consent)

• Object to certain processing (e.g. direct marketing)

Requests should be made in writing via the contact details below. We may charge a reasonable fee for providing access (if permitted by law).

If we refuse your request, we will provide reasons and how to make a complaint.

9. Marketing and opt-out

From time to time, we may send you marketing or promotional communications (by email or other means). If you do not wish to receive these, you can opt out by:

• Clicking the “unsubscribe” link in emails

• Contacting us directly

• Adjusting your communication preferences

We will not send you marketing after opt-out, unless you later consent.

10. Cross-border transfers

If we transfer personal information to recipients in other countries, we will take reasonable steps to ensure that the recipient handles the information in a manner consistent with the APPs (or equivalent safeguards). We will notify you of the countries to which disclosures are likely.

11. Changes to this Policy

We may update this Privacy Policy from time to time. We will publish updates on our website, and where material changes occur, we may notify you (e.g. via email). The date of last update will appear at the top of this Policy.

12. Contact & complaints

If you have any questions, requests or complaints about how we handle your personal information, please contact:

Director and Privacy Officer
Roque Consulting Pty Ltd
Email: mimi@roqueconsulting.com.au

If you remain unsatisfied, you may contact the Office of the Australian Information Commissioner (OAIC) or relevant privacy regulator.